Overview

overview

5

Static

static

3

Statement ...95.eml

windows7-x64

5

Statement ...95.eml

windows10-2004-x64

3

Statements...24.pdf

windows7-x64

1

Statements...24.pdf

windows10-2004-x64

1

email-html-2.txt

windows7-x64

1

email-html-2.txt

windows10-2004-x64

1

email-plain-1.txt

windows7-x64

1

email-plain-1.txt

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Statement of Account from Scan Global Logistics Account # SU516 95.eml

  • Size

    44KB

  • Sample

    240423-qc1s1sge84

  • MD5

    56d7003c4134ae4907c4d4edf18313c6

  • SHA1

    35490759e8144ba986a76b294011f4e79367c873

  • SHA256

    43b3ac06da8a85156f88cb3a9958cca7885742f034bb2721bccee2b60ecf2bda

  • SHA512

    126aa74f6fd0886f218248fe29a1f5941ffb96f7d8568960b40abaa7cee4d5d555be140e548f4553c03a51b5c7961ff9f32b2070218dedc6816008cc5d224573

  • SSDEEP

    768:38xMdRi7NP8rF+pFscOo5qUo/XTDa4M8vi60UgFk5duvR47aQbDBLUU2QB3r5/Cr:38xMdRi7NPwF+07E7oLW38/ZAADBoNcy

Score
5/10
linkpdf

Malware Config

Targets

    • Target

      Statement of Account from Scan Global Logistics Account # SU516 95.eml

    • Size

      44KB

    • MD5

      56d7003c4134ae4907c4d4edf18313c6

    • SHA1

      35490759e8144ba986a76b294011f4e79367c873

    • SHA256

      43b3ac06da8a85156f88cb3a9958cca7885742f034bb2721bccee2b60ecf2bda

    • SHA512

      126aa74f6fd0886f218248fe29a1f5941ffb96f7d8568960b40abaa7cee4d5d555be140e548f4553c03a51b5c7961ff9f32b2070218dedc6816008cc5d224573

    • SSDEEP

      768:38xMdRi7NP8rF+pFscOo5qUo/XTDa4M8vi60UgFk5duvR47aQbDBLUU2QB3r5/Cr:38xMdRi7NPwF+07E7oLW38/ZAADBoNcy

    Score
    5/10

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      Statements_SU5164222024.pdf

    • Size

      30KB

    • MD5

      fee2e86065ba00e54a285f45a7c3b00c

    • SHA1

      c48895fd48db6e545a01b1ff3f6bbf5239f09d36

    • SHA256

      1e96466ee0aa11b1a6ee59d4e6634bb1f868ebdd1613a74ad5a06efe2f40255a

    • SHA512

      24c24d7a60378afdc27125dc27c6494abb9ab0ef867d45432cbffd131204381d2e6e9197207f68f2fe67cd4a4791d27b02fa6d2b42055810272233fa5be282cf

    • SSDEEP

      768:8kNlJn3ae+bkgmaLWwbww1vChy5KLRJ1nRlNm1yK:ZKe0khwbww8rFJ1RiT

    Score
    1/10
    behavioral3behavioral4

    • Target

      email-html-2.txt

    • Size

      641B

    • MD5

      e7277ae1ad01fd7d1e77722c5cb69cbf

    • SHA1

      b13315259f046fa0df0872cbd68e0c1a481584d1

    • SHA256

      9ce41fc22ebaaf1386b7c601c65cdcf93edf881f2738647e615abdf036c5a373

    • SHA512

      70697ac485b35116c3a8e05ad671b2662079bd206e4e9937c5a7e3222fc580f45514edf8536ec63d2f0d7b918494a2848bcb55d4c9e7a5c62edaff0b426f58fa

    Score
    1/10
    behavioral5behavioral6

    • Target

      email-plain-1.txt

    • Size

      451B

    • MD5

      c6ec4a9e4c69b96f915e4c572f5a375f

    • SHA1

      90c18a198c9db3d3bc363c868d13686c2b290869

    • SHA256

      806d6d38ae3de7076a41107962e6cd919df24d6934ed39cbd2f93b1d31ae1a77

    • SHA512

      75a0c276ddf723965b2a4b6afd4bfc734ce8b2f568daabd137cac9bd08edd488828456673315f53dd103bb875c7537eb1a187039c556a1fa83ed9319fdaf6a24

    Score
    1/10
    behavioral7behavioral8

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks